Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[TT-13741] [release-5.7] exp/modcheck: Update go.mod dependencies (#6796
) ### **User description** <details open> <summary><a href="https://tyktech.atlassian.net/browse/TT-13741" title="TT-13741" target="_blank">TT-13741</a></summary> <br /> <table> <tr> <th>Summary</th> <td>CVE checks for 5.3.9 and 5.7.1</td> </tr> <tr> <th>Type</th> <td> <img alt="Task" src="https://tyktech.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium" /> Task </td> </tr> <tr> <th>Status</th> <td>In Dev</td> </tr> <tr> <th>Points</th> <td>N/A</td> </tr> <tr> <th>Labels</th> <td>-</td> </tr> </table> </details> <!-- do not remove this marker as it will break jira-lint's functionality. added_by_jira_lint --> --- Triggered by: titpetric JIRA: https://tyktech.atlassian.net/browse/TT-13741 | IMPORT | VERSION | LATEST | WARNINGS | CVES | |:---|:---|:---|:---|:---| | getkin/kin-openapi | v0.115.0 | v0.128.0 | Held back from upgrade | | | pires/go-proxyproto | v0.7.0 | v0.8.0 | | 0 of 1 | | robertkrimen/otto | v0.4.0 | v0.5.1 | | | | stretchr/testify | v1.9.0 | v1.10.0 | | | | valyala/fasthttp | v1.55.0 | v1.58.0 | | 0 of 1 | | golang.org/x/crypto | v0.29.0 | v0.31.0 | | 0 of 11 | | golang.org/x/net | v0.31.0 | v0.33.0 | | 0 of 17 | | golang.org/x/sync | v0.9.0 | v0.10.0 | | | | google.golang.org/grpc | v1.67.1 | v1.69.2 | | 0 of 2 | | google.golang.org/protobuf | v1.35.1 | v1.36.0 | | 0 of 2 | | redis/go-redis/v9 | v9.6.1 | v9.7.0 | | | | IBM/sarama | v1.43.1 | v1.43.3 | | | | goccy/go-json | v0.10.3 | v0.10.4 | | | | nats-io/nats.go | v1.37.0 | v1.38.0 | | | | newrelic/go-agent | v2.13.0 +incompatible | v3.35.1+incompatible | Held back from upgrade | | | testcontainers/testcontainers-go | v0.33.0 | v0.34.0 | | | | testcontainers/testcontainers-go/modules/kafka | v0.33.0 | v0.34.0 | | | | testcontainers/testcontainers-go/modules/nats | v0.33.0 | v0.34.0 | | | | go.opentelemetry.io/otel | v1.32.0 | v1.33.0 | Held back from upgrade | | | go.opentelemetry.io/otel/trace | v1.32.0 | v1.33.0 | Held back from upgrade | | | go.uber.org/mock | v0.4.0 | v0.5.0 | | | | golang.org/x/oauth2 | v0.23.0 | v0.24.0 | | | <details> <summary>Steps performed</summary> ~~~ + go get github.com/pires/[email protected] go: upgraded github.com/pires/go-proxyproto v0.7.0 => v0.8.0 + go get github.com/robertkrimen/[email protected] go: upgraded github.com/robertkrimen/otto v0.4.0 => v0.5.1 + go get github.com/stretchr/[email protected] go: upgraded github.com/stretchr/testify v1.9.0 => v1.10.0 + go get github.com/valyala/[email protected] go: upgraded github.com/valyala/fasthttp v1.55.0 => v1.58.0 + go get golang.org/x/[email protected] go: upgraded golang.org/x/crypto v0.29.0 => v0.31.0 go: upgraded golang.org/x/sync v0.9.0 => v0.10.0 go: upgraded golang.org/x/sys v0.27.0 => v0.28.0 go: upgraded golang.org/x/text v0.20.0 => v0.21.0 + go get golang.org/x/[email protected] go: upgraded golang.org/x/net v0.31.0 => v0.33.0 + go get golang.org/x/[email protected] + go get google.golang.org/[email protected] go: upgraded google.golang.org/grpc v1.67.1 => v1.69.2 + go get google.golang.org/[email protected] go: upgraded google.golang.org/protobuf v1.35.1 => v1.36.0 + go get github.com/redis/go-redis/[email protected] go: upgraded github.com/redis/go-redis/v9 v9.6.1 => v9.7.0 + go get github.com/IBM/[email protected] go: upgraded github.com/IBM/sarama v1.43.1 => v1.43.3 go: upgraded github.com/eapache/go-resiliency v1.6.0 => v1.7.0 + go get github.com/goccy/[email protected] go: upgraded github.com/goccy/go-json v0.10.3 => v0.10.4 + go get github.com/nats-io/[email protected] go: upgraded github.com/nats-io/nats.go v1.37.0 => v1.38.0 go: upgraded github.com/nats-io/nkeys v0.4.7 => v0.4.9 + go get github.com/testcontainers/[email protected] go: upgraded github.com/cpuguy83/dockercfg v0.3.1 => v0.3.2 go: upgraded github.com/testcontainers/testcontainers-go v0.33.0 => v0.34.0 + go get github.com/testcontainers/testcontainers-go/modules/[email protected] go: module github.com/testcontainers/[email protected] found, but does not contain package github.com/testcontainers/testcontainers-go/modules/kafka + go get github.com/testcontainers/testcontainers-go/modules/[email protected] go: module github.com/testcontainers/[email protected] found, but does not contain package github.com/testcontainers/testcontainers-go/modules/nats + go get go.uber.org/[email protected] go: upgraded go.uber.org/mock v0.4.0 => v0.5.0 + go get golang.org/x/[email protected] go: upgraded golang.org/x/oauth2 v0.23.0 => v0.24.0 ~~~ </details> <details> <summary>go mod tidy output</summary> ``` ``` </details> ___ ### **PR Type** dependencies ___ ### **Description** - Updated `go.mod` to upgrade multiple dependencies to their latest versions, improving compatibility, security, and functionality. - Updated `go.sum` to reflect the checksum changes corresponding to the updated dependencies in `go.mod`. - Key dependency upgrades include: - `github.com/pires/go-proxyproto` from v0.7.0 to v0.8.0. - `github.com/robertkrimen/otto` from v0.4.0 to v0.5.1. - `github.com/stretchr/testify` from v1.9.0 to v1.10.0. - `golang.org/x/crypto` from v0.29.0 to v0.31.0. - `google.golang.org/grpc` from v1.67.1 to v1.69.2. - `golang.org/x/net` from v0.31.0 to v0.33.0. - `golang.org/x/sync` from v0.9.0 to v0.10.0. - `golang.org/x/text` from v0.20.0 to v0.21.0. ___ ### **Changes walkthrough** 📝 <table><thead><tr><th></th><th align="left">Relevant files</th></tr></thead><tbody><tr><td><strong>Dependencies</strong></td><td><table> <tr> <td> <details> <summary><strong>go.mod</strong><dd><code>Update dependencies in go.mod to latest versions</code> </dd></summary> <hr> go.mod <li>Updated multiple dependencies to newer versions.<br> <li> Improved compatibility and security by upgrading libraries.<br> <li> Adjusted indirect dependencies to align with direct dependency <br>updates.<br> </details> </td> <td><a href="https://github.com/TykTechnologies/tyk/pull/6796/files#diff-33ef32bf6c23acb95f5902d7097b7a1d5128ca061167ec0716715b0b9eeaa5f6">+21/-21</a> </td> </tr> <tr> <td> <details> <summary><strong>go.sum</strong><dd><code>Update go.sum checksums for dependency updates</code> </dd></summary> <hr> go.sum <li>Updated checksums for dependencies in line with go.mod changes.<br> <li> Ensured integrity and consistency of dependency versions.<br> </details> </td> <td><a href="https://github.com/TykTechnologies/tyk/pull/6796/files#diff-3295df7234525439d778f1b282d146a4f1ff6b415248aaac074e8042d9f42d63">+46/-44</a> </td> </tr> </table></td></tr></tr></tbody></table> ___ > 💡 **PR-Agent usage**: Comment `/help "your question"` on any pull request to receive relevant information Co-authored-by: titpetric <[email protected]>
- Loading branch information
